core The APP export API do not trim whitespaces of password

The APP export API do not trim whitespaces of password

Open rashik1144 opened this issue 1 year ago • 2 comments

Parent Issue

No response

Problem Statement

I noticed that the API is currently accepting passwords that do not adhere to the specified length range (14 to 32 characters) and allows leading/trailing whitespaces. This behavior contradicts the expected validation rules.

Steps to Reproduce

Send a request to the API with a password of length 1 and leading/trailing whitespaces.
Observe that the API accepts the request without enforcing the specified password length.

Acceptance Criteria

The API should reject passwords that do not fall within the specified length range and should not allow leading/trailing whitespaces.

dotCMS Version

23.10.24 has this issue.

Proposed Objective

Security & Privacy

Proposed Priority

Priority 3 - Average

External Links... Slack Conversations, Support Tickets, Figma Designs, etc.

No response

Assumptions & Initiation Needs

No response

Quality Assurance Notes & Workarounds

No response

Sub-Tasks & Estimates

No response

Jan 08 '24 12:01 rashik1144

core core copied to clipboard

The APP export API do not trim whitespaces of password

Parent Issue

Problem Statement

Steps to Reproduce

Acceptance Criteria

dotCMS Version

Proposed Objective

Proposed Priority

External Links... Slack Conversations, Support Tickets, Figma Designs, etc.

Assumptions & Initiation Needs

Quality Assurance Notes & Workarounds

Sub-Tasks & Estimates

core
core copied to clipboard